CVSS: 9.1EPSS: 0%CPEs: 1EXPL: 0CVE-2024-12862 – REST API allows users without permissions to remove external collaborators
https://notcve.org/view.php?id=CVE-2024-12862
21 Apr 2025 — Incorrect Authorization vulnerability in the OpenText Content Server REST API on Windows, Linux allows users without the appropriate permissions to remove external collaborators.This issue affects Content Server: 20.2-24.4. La vulnerabilidad de autorización incorrecta en la API REST de OpenText Content Server en Windows y Linux permite a los usuarios sin los permisos adecuados eliminar colaboradores externos. Este problema afecta a Content Server: 20.2-24.4. • https://support.opentext.com/csm?id=ot_kb_unauthenticated&sysparm_article=KB0839115 • CWE-863: Incorrect Authorization •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2023-31871
https://notcve.org/view.php?id=CVE-2023-31871
18 May 2023 — OpenText Documentum Content Server before 23.2 has a flaw that allows for privilege escalation from a non-privileged Documentum user to root. The software comes prepackaged with a root owned SUID binary dm_secure_writer. The binary has security controls in place preventing creation of a file in a non-owned directory, or as the root user. However, these controls can be carefully bypassed to allow for an arbitrary file write as root. • https://gist.github.com/picar0jsu/a8e623639da34f36202ce5e436668de7 • CWE-732: Incorrect Permission Assignment for Critical Resource •
CVSS: 5.4EPSS: 0%CPEs: 1EXPL: 1CVE-2021-3010
https://notcve.org/view.php?id=CVE-2021-3010
26 Feb 2021 — There are multiple persistent cross-site scripting (XSS) vulnerabilities in the web interface of OpenText Content Server Version 20.3. The application allows a remote attacker to introduce arbitrary JavaScript by crafting malicious form values that are later not sanitized. Se presenta múltiples vulnerabilidades de tipo cross-site scripting (XSS) persistentes en la interfaz web de OpenText Content Server Versión 20.3. La aplicación permite a un atacante remoto introducir JavaScript arbitrario diseñando ... • https://www.exploit-db.com/exploits/49578 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 8.8EPSS: 2%CPEs: 1EXPL: 2CVE-2017-15276 – OpenText Documentum Content Server - Privilege Escalation
https://notcve.org/view.php?id=CVE-2017-15276
13 Oct 2017 — OpenText Documentum Content Server (formerly EMC Documentum Content Server) through 7.3 contains the following design gap, which allows an authenticated user to gain superuser privileges: Content Server allows uploading content using batches (TAR archives). When unpacking TAR archives, Content Server fails to verify the contents of an archive, which causes a path traversal vulnerability via symlinks. Because some files on the Content Server filesystem are security-sensitive, this leads to privilege escalati... • https://packetstorm.news/files/id/144613 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 8.8EPSS: 2%CPEs: 1EXPL: 2CVE-2017-15012 – OpenText Documentum Content Server - Arbitrary File Download Privilege Escalation
https://notcve.org/view.php?id=CVE-2017-15012
13 Oct 2017 — OpenText Documentum Content Server (formerly EMC Documentum Content Server) through 7.3 does not properly validate the input of the PUT_FILE RPC-command, which allows any authenticated user to hijack an arbitrary file from the Content Server filesystem; because some files on the Content Server filesystem are security-sensitive, this leads to privilege escalation. OpenText Documentum Content Server (anteriormente conocido como EMC Documentum Content Server) hasta la versión 7.3 no valida correctamente la ent... • https://packetstorm.news/files/id/144616 • CWE-20: Improper Input Validation •
CVSS: 8.8EPSS: 1%CPEs: 1EXPL: 2CVE-2017-15013 – OpenText Documentum Content Server - 'dmr_content' Privilege Escalation
https://notcve.org/view.php?id=CVE-2017-15013
13 Oct 2017 — OpenText Documentum Content Server (formerly EMC Documentum Content Server) through 7.3 contains the following design gap, which allows an authenticated user to gain superuser privileges: Content Server stores information about uploaded files in dmr_content objects, which are queryable and "editable" (before release 7.2P02, any authenticated user was able to edit dmr_content objects; now any authenticated user may delete a dmr_content object and then create a new one with the old identifier) by authenticate... • https://packetstorm.news/files/id/144615 • CWE-269: Improper Privilege Management •
CVSS: 4.3EPSS: 4%CPEs: 1EXPL: 2CVE-2017-15014 – OpenText Documentum Content Server - Arbitrary File Download
https://notcve.org/view.php?id=CVE-2017-15014
13 Oct 2017 — OpenText Documentum Content Server (formerly EMC Documentum Content Server) through 7.3 contains the following design gap, which allows authenticated users to download arbitrary content files regardless of the attacker's repository permissions: When an authenticated user uploads content to the repository, he performs the following steps: (1) calls the START_PUSH RPC-command; (2) uploads the file to the content server; (3) calls the END_PUSH_V2 RPC-command (here, Content Server returns a DATA_TICKET integer,... • https://packetstorm.news/files/id/144614 • CWE-269: Improper Privilege Management •
CVSS: 8.8EPSS: 1%CPEs: 1EXPL: 3CVE-2017-7221 – OpenText Documentum Content Server - dm_bp_transition.ebs docbase Method Arbitrary Code Execution
https://notcve.org/view.php?id=CVE-2017-7221
25 Apr 2017 — OpenText Documentum Content Server has an inadequate protection mechanism against SQL injection, which allows remote authenticated users to execute arbitrary code with super-user privileges by leveraging the availability of the dm_bp_transition docbase method with a user-created dm_procedure object, as demonstrated by use of a backspace character in an injected string. NOTE: this vulnerability exists because of an incomplete fix for CVE-2014-2513. OpenText Documentum Content Server tiene un inadecuado mecan... • https://packetstorm.news/files/id/142301 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 9.0EPSS: 0%CPEs: 1EXPL: 4CVE-2017-7220 – OpenText Documentum Content Server Privilege Evaluation
https://notcve.org/view.php?id=CVE-2017-7220
19 Apr 2017 — OpenText Documentum Content Server allows superuser access via sys_obj_save or save of a crafted object, followed by an unauthorized "UPDATE dm_dbo.dm_user_s SET user_privileges=16" command, aka an "RPC save-commands" attack. NOTE: this vulnerability exists because of an incomplete fix for CVE-2015-4532. OpenText Documentum Content Server permite el acceso de superusuario a través de sys_obj_save o guardar un objeto manipulado, seguido de un comando "UPDATE dm_dbo.dm_user_s SET user_privileges=16" no autori... • https://packetstorm.news/files/id/142213 • CWE-20: Improper Input Validation •
CVSS: 8.8EPSS: 1%CPEs: 1EXPL: 2CVE-2017-5585 – OpenText Documentum Content Server 7.3 SQL Injection
https://notcve.org/view.php?id=CVE-2017-5585
16 Feb 2017 — OpenText Documentum Content Server (formerly EMC Documentum Content Server) 7.3, when PostgreSQL Database is used and return_top_results_row_based config option is false, does not properly restrict DQL hints, which allows remote authenticated users to conduct DQL injection attacks and execute arbitrary DML or DDL commands via a crafted request. NOTE: this vulnerability exists because of an incomplete fix for CVE-2014-2520. OpenText Documentum Content Server (anteriormente EMC Documentum Content Server) 7.3,... • https://packetstorm.news/files/id/141124 • CWE-74: Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') •